$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/2F6ACEDCDAAE11E9A0D2D77BC4F9AE02.roa File: 2F6ACEDCDAAE11E9A0D2D77BC4F9AE02.roa (raw, json) Hash identifier: TXxipvWYdHmo+yYnHI7mxR0Ldfec2TqLDPpiUwEXPl4= Subject key identifier: 38:77:C3:94:B8:69:DD:A9:9C:95:65:40:FD:00:B7:29:B9:E9:14:2B Certificate issuer: /CN=A91EAE3D/serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00 Certificate serial: 179B Authority key identifier: C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/2F6ACEDCDAAE11E9A0D2D77BC4F9AE02.roa Signing time: Tue 20 Feb 2024 17:55:33 +0000 ROA not before: Tue 20 Feb 2024 17:55:33 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 2764 IP address blocks: 203.89.80.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 17:47:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6043 (0x179b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE3D/serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00 Validity Not Before: Feb 20 17:55:33 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65d4e795-b52f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:56:ba:f6:aa:65:5b:95:dc:0b:ff:87:2f:12: 8b:5b:b1:12:58:44:31:83:96:dd:cf:a6:93:23:8e: dd:03:ed:cf:3a:75:32:52:49:14:aa:b5:f1:f3:87: 8f:57:9a:cb:64:d6:d0:e6:6f:4f:8f:df:c7:32:3c: 80:38:ca:36:d7:59:bc:18:42:ca:ee:4e:a7:2a:27: ae:7b:f3:eb:6c:84:11:3e:8e:3a:2f:25:d7:a7:11: 85:77:ee:0a:98:d1:5d:7a:82:6c:2d:e6:28:31:ea: 65:4c:1b:b6:65:26:fe:c8:48:b7:75:eb:92:bc:86: a2:7c:2b:e4:63:e5:c5:ee:a1:8b:a1:f0:f0:c5:e5: fb:f8:56:14:10:72:08:47:46:60:a2:f0:fe:d5:3e: 73:e4:dd:17:d1:60:de:b4:e8:26:0a:b6:fd:46:24: c3:73:8d:1b:72:ec:0c:93:74:99:84:88:47:f0:dd: 12:bd:bb:6b:73:e7:49:c3:c5:40:c0:31:07:6d:03: e2:0a:91:29:32:db:c1:5d:8b:cd:cf:e3:72:95:5f: 78:ef:89:30:8e:b4:4d:3a:c0:88:2a:e6:d8:14:74: c5:d9:9a:9b:9f:14:4b:f7:12:36:2d:15:80:21:50: ec:8e:65:cc:74:55:47:92:0a:bb:29:35:3d:db:d2: 8c:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:77:C3:94:B8:69:DD:A9:9C:95:65:40:FD:00:B7:29:B9:E9:14:2B X509v3 Authority Key Identifier: keyid:C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/2F6ACEDCDAAE11E9A0D2D77BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.89.80.0/24 Signature Algorithm: sha256WithRSAEncryption 83:95:a7:c1:44:77:e4:38:4f:db:f0:53:01:ed:1b:99:c4:8f: a7:a2:e1:bc:02:7a:52:34:64:83:34:ec:d1:9a:c8:a3:b3:4c: a1:d9:89:94:ad:84:b4:29:6e:e2:1b:c3:0b:de:b0:29:dd:3d: 26:b1:65:22:b1:80:23:ae:7e:f8:f0:8c:b6:36:e3:6e:ad:0b: 20:80:c3:85:5c:82:f9:38:06:b9:63:b5:eb:91:c2:e8:dd:76: 5b:4f:cf:b0:bc:46:99:0b:39:98:79:aa:f2:3e:07:b0:cc:6c: 63:db:6c:05:2f:53:93:24:74:75:c7:ee:39:23:27:a5:d1:77: 32:f1:39:2b:1b:5d:ff:7d:ed:34:f5:8c:d7:a7:08:69:ae:0d: 2e:f2:a3:e5:b9:64:44:7c:b3:fb:62:19:1e:7a:54:a5:b2:f4: 82:0f:e2:82:7b:38:6c:ce:53:ec:f6:ad:9f:29:e0:d9:e9:cb: 0c:dc:5f:64:b5:73:73:37:9b:bd:04:27:c4:c0:5e:b5:63:9e: c0:4e:58:11:46:fe:f2:d4:34:96:6d:ae:ee:fd:b3:5a:9d:ef: 45:93:30:25:f3:a8:b3:f9:63:c9:d2:d8:e4:5a:f9:81:78:1b: 91:70:d1:f2:f2:6d:d7:c4:97:dd:3b:04:39:1b:48:c2:30:0c: e7:f0:a1:cd -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICF5swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFM0QxMTAvBgNVBAUTKEM3MjY5QjEyNEM0MjBDNTVFMjlGQjUxRDNDMUIwRDlE NDc2Q0JEMDAwHhcNMjQwMjIwMTc1NTMzWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWQ0ZTc5NS1iNTJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8Va69qplW5XcC/+HLxKLW7ESWEQxg5bdz6aTI47dA+3POnUyUkkUqrXx84eP V5rLZNbQ5m9Pj9/HMjyAOMo211m8GELK7k6nKieue/PrbIQRPo46LyXXpxGFd+4K mNFdeoJsLeYoMeplTBu2ZSb+yEi3deuSvIaifCvkY+XF7qGLofDwxeX7+FYUEHII R0ZgovD+1T5z5N0X0WDetOgmCrb9RiTDc40bcuwMk3SZhIhH8N0Svbtrc+dJw8VA wDEHbQPiCpEpMtvBXYvNz+NylV9474kwjrRNOsCIKubYFHTF2ZqbnxRL9xI2LRWA IVDsjmXMdFVHkgq7KTU929KM7QIDAQABo4IClTCCApEwHQYDVR0OBBYEFDh3w5S4 ad2pnJVlQP0Atym56RQrMB8GA1UdIwQYMBaAFMcmmxJMQgxV4p+1HTwbDZ1HbL0A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUUzRC85N0I2RTBDRTc1 REUxMUU4QjcwNEEyNDZDNEY5QUUwMi94eWFiRWt4Q0RGWGluN1VkUEJzTm5VZHN2 UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h5YWJFa3hDREZYaW43VWRQQnNOblVkc3ZRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUFFM0QvOTdCNkUwQ0U3NURFMTFFOEI3MDRBMjQ2QzRGOUFFMDIvMkY2QUNFRENE QUFFMTFFOUEwRDJENzdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLWVAwDQYJKoZIhvcNAQELBQADggEBAIOVp8FEd+Q4T9vw UwHtG5nEj6ei4bwCelI0ZIM07NGayKOzTKHZiZSthLQpbuIbwwvesCndPSaxZSKx gCOufvjwjLY2426tCyCAw4Vcgvk4BrljteuRwujddltPz7C8RpkLOZh5qvI+B7DM bGPbbAUvU5MkdHXH7jkjJ6XRdzLxOSsbXf997TT1jNenCGmuDS7yo+W5ZER8s/ti GR56VKWy9IIP4oJ7OGzOU+z2rZ8p4NnpywzcX2S1c3M3m70EJ8TAXrVjnsBOWBFG /vLUNJZtru79s1qd70WTMCXzqLP5Y8nS2ORa+YF4G5Fw0fLybdfEl907BDkbSMIw DOfwoc0= -----END CERTIFICATE-----Generated at Fri May 31 20:34:19 2024 by rpki-client on console-ams.rpki-client.org